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The Virtual Fabrics MIB 
Status of This Memo 


This document specifies an Internet standards track protocol for the 
Internet community, and requests discussion and suggestions for 


improvements. Please refer to the current edition of the "Internet 
Official Protocol Standards" (STD 1) for the standardization state 
and status of this protocol. Distribution of this memo is unlimited. 


Copyright Notice 
Copyright (C) The IETF Trust (2006). 

Abstract 
This memo defines a portion of the Management Information Base (MIB) 
for use with network management protocols in the Internet community. 
In particular, it describes managed objects for information related 


to the Fibre Channel network’s Virtual Fabrics function. 
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Les 


Introduction 


This memo defines a portion of the Management Information Base (MIB) 
for use with network management protocols in the Internet community. 
In particular, it describes managed objects for information related 
to the Fibre Channel network’s Virtual Fabric function. 


The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", “SHALL NOT", 
"SHOULD", "SHOULD NOT", "RECOMMENDED", "MAY", and "OPTIONAL" in this 
document are to be interpreted as described in RFC 2119 [RFC2119]. 


The Internet-Standard Management Framework 


For a detailed overview of the documents that describe the current 
Internet-Standard Management Framework, please refer to section 7 of 
RFC 3410 [RFC3410]. Managed objects are accessed via a virtual 
information store, termed the Management Information Base or MIB. 
MIB objects are generally accessed through the Simple Network 
Management Protocol (SNMP). 


Objects in the MIB are defined using the mechanisms defined in the 
Structure of Management Information (SMI). This memo specifies a MIB 
module that is compliant to the SMIv2, which is described in STD 58, 
RFC 2578 [RFC2578], STD 58, RFC 2579 [RFC2579] and STD 58, RFC 2580 
[RFC2580]. 


Short Overview of Fibre Channel 


The Fibre Channel (FC) is logically a bidirectional point-to-point 
serial data channel, structured for high performance. Fibre Channel 
provides a general transport vehicle for higher-level protocols such 
as Small Computer System Interface (SCSI) command sets, the High- 
Performance Parallel Interface (HIPPI) data framing, IP (Internet 
Protocol), IEEE 802.2, and others. 


Physically, Fibre Channel is an interconnection of multiple 
communication points, called N_Ports, interconnected either by a 
switching network, called a Fabric, or by a point-to-point link. A 
Fibre Channel "node" consists of one or more N_Ports. A Fabric may 
consist of multiple Interconnect Elements, some of which are 
switches. An N_Port connects to the Fabric via a port on a switch 
called an F_Port. When multiple FC nodes are connected to a single 
port on a switch via an "Arbitrated Loop" topology, the switch port 
is called an FL_Port, and the nodes’ ports are called NL_Ports. The 
term Nx Port is used to refer to either an N Port or an NL Port. The 
term Fx Port is used to refer to either an F Port or an FL Port. A 
switch port, which is interconnected to another switch port via an 
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Inter-Switch Link (ISL), is called an E Port. A B_Port connects a 
bridge device with an E_Port on a switch; a B_Port provides a subset 
of E Port functionality. 


Many Fibre Channel components (including the Fabric, each node, and 
most ports) have globally-unique names. These globally-unique names 
are typically formatted as World Wide Names (WWNs). More information 
on WWNs can be found in [FC-FS]. WWNs are expected to be persistent 
across agent and unit resets. 


Fibre Channel frames contain 24-bit address identifiers that identify 
the frame’s source and destination ports. Each FC port has both an 
address identifier and a WWN. When a Fabric is in use, the FC 
address identifiers are dynamic and are assigned by a switch. Each 
octet of a 24-bit address represents a level in an address hierarchy, 
with a Domain_ID being the highest level of the hierarchy. 


Virtual Fabrics allow a single physical Fabric to be divided into 
multiple logical Fabrics. Each Virtual Fabric may be managed 
independently like traditional Fabrics. Virtual Fabrics are designed 
to achieve a better utilization of a physical infrastructure and to 
isolate events in one Virtual Fabric from affecting other Fabrics. 
When one Core Switch provides switching functions for multiple 
Virtual Fabrics, that Core Switch is modeled as containing multiple 
Virtual Switches, one for each Virtual Fabric. 


Each Virtual Fabric is identified by a 12-bit Virtual Fabric ID 
(VF_ID). When frames from multiple Virtual Fabrics are transmitted 
over a physical link, the VF_ID carried in a frame’s Virtual Fabric 
Tagging Header (VFT_Header) identifies which Virtual Fabric the frame 
belongs to. The use of VFT_Headers is enabled through an initial 
negotiation exchange between the two connected ports. 


4. Relationship to Other MIBs 


This MIB extends beyond [RFC4044] to cover the functionality, in 
Fibre Channel switches, of providing Fibre Channel’s Virtual Fabrics 
function. 


5. MIB Overview 


This MIB module provides the means for monitoring the operation of, 
and configuring some parameters of, one or more instances of Fibre 
Channel Virtual Fabric functionality. (Note that there are no 
definitions in this MIB module of "managed actions" which can be 
invoked via a remote network management protocol such as SNMP.) 
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The following MIB module has IMPORTS from [RFC2578], [RFC2579], 
[RFC2580], [RFC2863], [RFC4044], and [RFC4439]. In REFERENCE 
clauses, it refers to [FC-SW-4]. 


5.1. Fibre Channel Management Instance 


A Fibre Channel management instance is defined in [RFC4044] as a 
separable managed instance of Fibre Channel functionality. Fibre 
Channel functionality may be grouped into Fibre Channel management 
instances in whatever way is most convenient for the 
implementation(s). For example, one such grouping accommodates a 
single SNMP agent having multiple AgentX [RFC2741] sub-agents, with 
each sub-agent implementing a different Fibre Channel management 
instance. 


The object, fcmInstanceIndex, is IMPORTed from the FC-MGMT-MIB 
[RFC4044] as the index value to uniquely identify each Fibre Channel 
management instance, for example within the same SNMP context 
([RFC3411] section 3.3.1). The tlivfVirtualSwitchTable augments the 
fomSwitchTable, and the primary index variable of the fcmSwitchTable 
is fcomInstanceIndex. 


5.2. Representing Core and Virtual Switches 


In the presence of Virtual Switches, fcmSwitchTable in RFC4044 
contains a row for each Virtual Switch. fcmSwitchTable, 
tlivfCoreSwitchTable, and tllivfVirtualSwitchTable are complementary. 
The tllvfCoreSwitchTable and tllvfVirtualSwitchTable contain 
information that helps the management client determine which Switches 
are Virtual Switches and how each relates to a Core Switch. A 
Virtual Switch must reside in a single Core Switch, and a Core Switch 
is defined as a set of entities with the same Core Switch_Name. 


RFC 4044 was defined before Virtual Switches were standard and 
represented only physical Switches, so the RFC 4044 tables were not 
defined as read-create. With the advent of Virtual Switches, Virtual 
Switches can now be created by administrators, and read-create tables 
are required. The StorageType of RFC 4044 tables were not defined, 
and StorageTypes used in this MIB should also apply to the RFC 4044 
tables that this MIB augments. 
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6. The T11-FC-VIRTUAL-FABRIC-MIB Module 
T11-FC-VIRTUAL-FABRIC-MIB DEFINITIONS ::= BEGIN 
IMPORTS 
MODULE-IDENTITY, OBJECT-TYPE, 
Unsigned32, mib-2 
FROM SNMPv2-SMI [RFC2578] 
MODULE-COMPLIANCE, OBJECT-GROUP 
FROM SNMPv2-CONF [RFC2580] 
RowStatus, StorageType FROM SNMPv2-TC [RFC2579] 
InterfaceIndex FROM IF-MIB [RFC2863] 
fcmInstanceIndex, FcNameIdOrZero, 
fomPortEntry, focmSwitchEntry 
FROM FC-MGMT-MIB [RFC4044] 
TiliFabricIndex FROM T11-TC-MIB; [RFC4439] 
tilFcVirtualFabricMIB MODULE-IDENTITY 
LAST-UPDATED "2006111000002" 
ORGANIZATION "IETF IMSS (Internet and Management Support 
for Storage) Working Group" 
CONTACT-INFO 
" 
Scott Kipp 
McDATA Corporation 
Tel: +1 720 558-3452 
E-mail: scott.kipp@mcdata.com 
Postal: 4 McDATA Parkway 
Broomfield, CO USA 80021 
G D Ramkumar 
SnapTell, Inc. 
Tel: +1 650-326-7627 
E-mail: gramkumar@stanfordalumni.org 
Postal: 2741 Middlefield Rd, Suite 200 
Palo Alto, CA USA 94306 
Keith McCloghrie 
Cisco Systems, Inc. 
Tel: +1 408 526-5260 
E-mail: kzm@cisco.com 
Postal: 170 West Tasman Drive 
San Jose, CA USA 95134 
" 
DESCRIPTION 
"This module defines management information specific to 
Fibre Channel Virtual Fabrics. A Virtual Fabric is a 
Kipp, et al. Standards Track [Page 5] 
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Fabric composed of partitions of switches, links and 
N_Ports with a single Fabric management domain, Fabric 
Services and independence from other Virtual Fabrics. 


Copyright (C) The IETF Trust (2006). This version of 
this MIB module is part of RFC 4747; see the RFC itself for 
full legal notices." 
REVISION "2006111000002" 
DESCRIPTION 
"Initial version of this MIB module, published as RFC 4747." 
:1:= { mib-2 147 } 


tlivfObjects OBJECT IDENTIFIER 
tlivfConformance OBJECT IDENTIFIER 


{ tliFcVirtualFabricMIB 1 } 
{ tliFcVirtualFabricMIB 2 } 
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-- MIB object definitions 


tlivfCoreSwitchTable OBJECT-TYPE 


SYNTAX SEQUENCE OF TlivfCoreSwitchEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"A table of core switches supported by the current 
management entity." 
::= { tllvfObjects 1 } 


tlivfCoreSwitchEntry OBJECT-TYPE 


SYNTAX TlivfCoreSwitchEntry 
MAX-ACCESS not-accessible 
STATUS current 

DESCRIPTION 


"Each entry represents one core switch." 
INDEX { fomInstanceIndex, tlivfCoreSwitchSwitchName } 
::= { tllvfCoreSwitchTable 1} 


TlivfCoreSwitchEntry ::= 
SEQUENCE { 
tlivfCoreSwitchSwitchName FcNameIdOrZero, 
tlivfCoreSwitchMaxSupported Unsigned32, 
tlivfCoreSwitchStorageType StorageType 
} 


tlivfCoreSwitchSwitchName OBJECT-TYPE 


SYNTAX FcNameldOrZero (SIZE(8 | 16)) 
MAX-ACCESS not-accessible 
STATUS current 
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DESCRIPTION 
"The Core Switch_Name (WWN) of this Core Switch." 
::= { tllvfCoreSwitchEntry 1 } 


tlivfCoreSwitchMaxSupported OBJECT-TYPE 


SYNTAX Unsigned32 (1..4095) 
MAX-ACCESS read-write 

STATUS current 

DESCRIPTION 


"In switches that do not support Virtual Fabrics, 
this object has the value of 1. If Virtual Fabrics 
are supported, this object is the maximum number of 
Virtual Fabrics supported by the Core Switch. For 
the purpose of this count, the Control VF_ID is 
ignored." 

::= { tllvfCoreSwitchEntry 2 } 


tlivfCoreSwitchStorageType OBJECT-TYPE 


SYNTAX StorageType 
MAX-ACCESS read-write 
STATUS current 
DESCRIPTION 


"The storage type for this conceptual row. 
Conceptual rows having the value ’permanent’ need not 
allow write-access to any columnar objects in the row." 
DEFVAL { nonVolatile } 
::= { tllvfCoreSwitchEntry 3 } 


-- Virtual Switch table 


tlivfVirtualSwitchTable OBJECT-TYPE 


SYNTAX SEQUENCE OF TlivfVirtualSwitchEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"A table of Virtual Switches. When one Core Switch 
provides switching functions for multiple Virtual Fabrics, 
that Core Switch is modeled as containing multiple 
Virtual Switches, one for each Virtual Fabric. This table 
contains one row for every Virtual Switch on every Core 
Switch. This table augments the basic switch information in 
the fcmSwitchTable Table in the FC-MGMT-MIB." 

REFERENCE 
"fomSwitchTable is defined in the FC-MGMT-MIB [RFC4044]." 

:= { tllvfObjects 2 } 


tlivfVirtualSwitchEntry OBJECT-TYPE 
SYNTAX TlivfVirtualSwitchEntry 
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MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 
"An entry of the Virtual Switch table. Each row is for a 
Virtual Switch. 


This table augments the fcmSwitchTable, i.e., every entry 
in this table has a one-to-one correspondence with an 
entry in the fcmSwitchTable. At the time when the 
fomSwitchTable was defined, it applied to physical 
switches. With the definition and usage of virtual 
switches, fcmSwitchTable now applies to virtual switches 
as well as physical switches, and (in contrast to physical 
switches) it is appropriate to provide the capability for 
virtual switches to be created via remote management 
applications, e.g., via SNMP. 


So, this entry contains a RowStatus object (to allow the 
creation of a virtual switch), as well as a StorageType 
object. Obviously, if a row is created/deleted in this 
table, the corresponding row in the fcmSwitchTable will 
be created/deleted." 

REFERENCE 
"fomSwitchEntry is defined in the FC-MGMT-MIB module 
[RFC4044]." 

AUGMENTS { fomSwitchEntry } 

1:= { tllivfVirtualSwitchTable 1} 


TlivfVirtualSwitchEntry ::= 


SEQUENCE { 
tlivfVirtualSwitchVfId TliFabricIndex, 
tlivfVirtualSwitchCoreSwitchName FcNameIdOrZero, 
tlivfVirtualSwitchRowStatus RowStatus, 
tlivfVirtualSwitchStorageType StorageType 


} 


tlivfVirtualSwitchVfId OBJECT-TYPE 


SYNTAX TliFabricIndex 
MAX-ACCESS  read-create 
STATUS current 
DESCRIPTION 


"The VF ID of the Virtual Fabric for which this virtual 
switch performs its switching function. The Control 
VF ID is implicitly enabled and is not set. 
Communication with the Control VF ID is required." 
REFERENCE 
"FC-SW-4, REV 7.5, section 12.2" 
::= ( tllvfVirtualSwitchEntry 1 } 
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tlivfVirtualSwitchCoreSwitchName OBJECT-TYPE 


SYNTAX FcNameldOrZero (SIZE(8 | 16)) 
MAX-ACCESS read-only 

STATUS current 

DESCRIPTION 


"The Core Switch_Name (WWN) of the Core Switch that 
contains this Virtual Switch." 

REFERENCE 
"FC-SW-4, REV 7.5, section 12.2." 

::= { tllvfVirtualSwitchEntry 2 } 


tlivfVirtualSwitchRowStatus OBJECT-TYPE 


SYNTAX RowStatus 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 


"The status of this row." 
::= { tllvfVirtualSwitchEntry 3 } 


tlivfVirtualSwitchStorageType OBJECT-TYPE 


SYNTAX StorageType 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 


"The storage type for this conceptual row. 
Conceptual rows having the value ’permanent’ need not 
allow write-access to any columnar objects in the row." 
DEFVAL { nonVolatile } 
:= { tlivfVirtualSwitchEntry 4 } 


-- Port table 


tlivfPortTable OBJECT-TYPE 


SYNTAX SEQUENCE OF TllivfPortEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"A table of Port attributes related to Virtual Fabrics." 
::= { tllvfObjects 3 } 


tlivfPortEntry OBJECT-TYPE 


SYNTAX TlivfPortEntry 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 


"Each entry represents a physical Port on a switch. 
Switches that support Virtual Fabrics would add 
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these four additional columns to the fcmPortEntry 
row." 
REFERENCE 
"fomPortEntry is defined in the FC-MGMT-MIB module." 
AUGMENTS { fomPortEntry } 
::= { tlivfPortTable 1} 


TlivfPortEntry ::= 
SEQUENCE { 
tlivfPortVfId TliFabricIndex, 
tlivfPortTaggingAdminStatus INTEGER, 
tlivfPortTaggingOperStatus INTEGER, 
tllvfPortStorageType StorageType 


} 


tlivfPortVfId OBJECT-TYPE 


SYNTAX TliFabricIndex 
MAX-ACCESS read-write 
STATUS current 
DESCRIPTION 


"The Port VF_ID assigned to this Port. The Port VF_ID is the 
default Virtual Fabric that is assigned to untagged frames 
arriving at this Port. The Control VF_ID is implicitly 


enabled and is not set. Communication with the Control 
VF_ID is required." 

REFERENCE 
"FC-SW-4, REV 7.5, section 12.1" 

DEF VAL {1} 


:= { tlivfPortEntry I } 


tlivfPortTaggingAdminStatus OBJECT-TYPE 


Kipp, 


SYNTAX INTEGER { 
off(1), 
on(2), 
auto(3) 
) 
MAX-ACCESS read-write 
STATUS current 
DESCRIPTION 
"This object is used to configure the administrative status 
of Virtual Fabric tagging on this Port. 


SET operation Description 


off (1) To disable Virtual Fabric tagging on this 
Port. 
on (2) To enable Virtual Fabric tagging on this 
et al. Standards Track [Page 10] 
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Port if the attached Port doesn’t 
prohibit it. 


auto (3) To enable Virtual Fabric tagging if the 
peer requests it." 
REFERENCE 
"FC-SW-4, REV 7.5, section 12.4" 
:= { tlivfPortEntry 2 } 


tlivfPortTaggingOperStatus OBJECT-TYPE 
SYNTAX INTEGER { 
off(1), 
on (2) 
} 
MAX-ACCESS read-only 
STATUS current 
DESCRIPTION 
"This object is used to report the operational status of 
Virtual Fabric tagging on this Port. 


SET operation Description 


off (1) Virtual Fabric tagging is disabled on this 
Port. 
on (2) Virtual Fabric tagging is enabled on this 
Port." 
REFERENCE 


"FC-SW-4, REV 7.5, section 12.4" 
:= { tlivfPortEntry 3 } 


tlivfPortStorageType OBJECT-TYPE 


SYNTAX StorageType 
MAX-ACCESS read-write 
STATUS current 
DESCRIPTION 


"The storage type for this conceptual row, and for the 
corresponding row in the augmented fcmPortTable. 


Conceptual rows having the value ’permanent’ need not 
allow write-access to any columnar objects in the row." 
DEFVAL { nonVolatile } 
::= { tlivfPortEntry 4 } 
-- Locally Enabled Table 


tllvfLocallyEnabledTable OBJECT-TYPE 
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SYNTAX SEQUENCE OF TlivfLocallyEnabledEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"A table for assigning and reporting operational status of 
locally-enabled Virtual Fabric IDs to Ports. The set of 
Virtual Fabrics operational on the Port is the bit-wise 
‘AND’ of the set of locally-enabled VF IDs of this Port 
and the locally-enabled VF IDs of the attached Port." 

::= ( tllvfObjects 4 } 


tlivfLocallyEnabledEntry OBJECT-TYPE 


SYNTAX TlivfLocallyEnabledEntry 
MAX-ACCESS not-accessible 

STATUS current 

DESCRIPTION 


"An entry for each locally-enabled VF_ID on 
each Port." 
REFERENCE 
"FC-SW-4, REV 7.5, section 12.4" 
INDEX { tllivfLocallyEnabledPortIfiIndex, tlivfLocallyEnabledVfId } 


::= { tlivfLocallyEnabledTable 1} 


TlivfLocallyEnabledEntry ::= 


SEQUENCE { 
tlivfLocallyEnabledPortIfIndex InterfaceIndex, 
tllvfLocallyEnabledVfId TliFabricIndex, 
tlivfLocallyEnabledOperStatus INTEGER, 
tlivfLocallyEnabledRowStatus RowStatus, 
tllvfLocallyEnabledStorageType StorageType 


} 


tllvfLocallyEnabledPortIfIindex OBJECT-TYPE 


SYNTAX InterfaceIndex 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 


"The value of the ifIndex that identifies the Port." 
::= { tllvfLocallyEnabledEntry 1 } 


tllvfLocallyEnabledVfId OBJECT-TYPE 


SYNTAX TliFabricIndex 
MAX-ACCESS not-accessible 
STATUS current 
DESCRIPTION 


"A locally-enabled VF_ID on this Port." 
::= { tllvfLocallyEnabledEntry 2 } 
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tlivfLocallyEnabledOperStatus OBJECT-TYPE 

SYNTAX INTEGER { 

off(1), 

on (2) 

) 

MAX-ACCESS read-only 
STATUS current 
DESCRIPTION 


"This object is used to report the operational status of 


Virtual Fabric tagging on this Port. 


SET operation Description 


off (1) Virtual Fabric tagging is disabled on this 
Port. 
on (2) Virtual Fabric tagging is enabled on this 
Ports" 
REFERENCE 


"FC-SW-4, REV 7.3, section 12.4" 
:= { tlivfLocallyEnabledEntry 3 } 


tllvfLocallyEnabledRowStatus OBJECT-TYPE 


SYNTAX RowStatus 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 


"The status of this conceptual row. 


When a row in this table is in ”active(l)” state, 
no object in that row can be modified except 
tlivfLocallyEnabledRowStatus and 
tllvfLocallyEnabledStorageType." 

::= { tllvfLocallyEnabledEntry 4 } 


tlivfLocallyEnabledStorageType OBJECT-TYPE 


SYNTAX StorageType 
MAX-ACCESS read-create 
STATUS current 
DESCRIPTION 


"The storage type for this conceptual row. 


Conceptual rows having the value ’permanent’ need not 
allow write-access to any columnar objects in the row." 


DEFVAL { nonVolatile } 
::= { tlivfLocallyEnabledEntry 5 } 
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-- Conformance Section 


November 2006 


tllvfMIBCompliances OBJECT IDENTIFIER ::= { tllvfConformance 1 } 
tiivfMIBGroups OBJECT IDENTIFIER ::= { tllvfConformance 2 } 


tlivfMIBCompliance MODULE-COMPLIANCE 
STATUS current 
DESCRIPTION 


"Describes the requirements for compliance to the 


Fibre Channel Virtual Fabric MIB." 
MODULE -- this module 
MANDATORY-GROUPS { tlivfGeneralGroup } 


OBJECT tlivfCoreSwitchMaxSupported 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


OBJECT tlivfCoreSwitchStorageType 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


OBJECT tlivfVirtualSwitchVfid 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


OBJECT tlivfVirtualSwitchRowStatus 
SYNTAX RowStatus { active(l) } 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


OBJECT tlivfVirtualSwitchStorageType 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


OBJECT tlivfPortVfId 
MIN-ACCESS read-only 
DESCRIPTION 
"Write access is not required." 


OBJECT tlivfPortTaggingAdminStatus 


MIN-ACCESS read-only 
DESCRIPTION 
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"Write access is not required." 


OBJECT tlivfPortStorageType 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


OBJECT tlivfLocallyEnabledRowStatus 


SYNTAX RowStatus { active(1) } 
MIN-ACCESS read-only 
DESCRIPTION 


"Write access is not required." 


OBJECT tlivfLocallyEnabledStorageType 
MIN-ACCESS read-only 
DESCRIPTION 

"Write access is not required." 


::= { tllvfMIBCompliances 1 } 
-- Units of conformance 


tlivfGeneralGroup OBJECT-GROUP 

OBJECTS { tllvfCoreSwitchMaxSupported, 
tlivfVirtualSwitchVfId, 
tlivfVirtualSwitchCoreSwitchName, 
tlivfVirtualSwitchRowStatus, 
tlivfPortVfId, 
tlivfPortTaggingAdminStatus, 
tlivfLocallyEnabledOperStatus, 
tlivfPortTaggingOperStatus, 
tlivfLocallyEnabledRowStatus, 

tlivfCoreSwitchStorageType, 

tlivfVirtualSwitchStorageType, 
tllvfPortStorageType, 
tllvfLocallyEnabledStorageType 


) 
STATUS current 
DESCRIPTION 
"A collection of objects for monitoring and 


2006 


configuring Virtual Fabrics in a Fibre Channel switch." 


::= { tllvfMIBGroups 1 } 


END 


Kipp, et al. Standards Track [Page 15] 


RFC 4747 Virtual Fabrics MIB November 2006 


7. 


Security Considerations 


There are a number of management objects defined in this MIB module 
with a MAX-ACCESS clause of read-write and/or read-create. Such 
objects may be considered sensitive or vulnerable in some network 
environments. The support for SET operations in a non-secure 
environment without proper protection can have a negative effect on 
network operations. These are the tables and objects and their 
sensitivity/vulnerability: 


tlivfCoreSwitchMaxSupported, tllvfVirtualSwitchVfld, 
tlivfCoreSwitchStorageType, tlivfVirtualSwitchStorageType and 
tlivfVirtualSwitchRowStatus 


- the ability to change the configuration of Virtual Fabrics on 
a particular switch. 


tlivfPortTaggingAdminStatus, tllvfLocallyEnabledRowStatus, 
tllvfPortVfIid, tlivfPortStorageType and 
tllvfLocallyEnabledStorageType 


- the ability to change the configuration of Virtual Fabrics on 
a port of a particular switch. 


Some of the readable objects in this MIB module (i.e., objects with a 
MAX-ACCESS other than not-accessible) may be considered sensitive or 
vulnerable in some network environments. It is thus important to 
control even GET and/or NOTIFY access to these objects and possibly 
to even encrypt the values of these objects when sending them over 
the network via SNMP. These are the tables and objects and their 
sensitivity/vulnerability: 


tlivfVirtualSwitchCoreSwitchName, tllvfPortTaggingOperStatus, 
tlivfLocallyEnabledOperStatus, 


- the ability to discover configuration of Virtual Fabrics ona 
virtual switch or a port. 


SNMP versions prior to SNMPv3 did not include adequate security. 

Even if the network itself is secure (for example by using IPSec), 
even then, there is no control as to who on the secure network is 
allowed to access and GET/SET (read/change/create/delete) the objects 
in this MIB module. 


It is RECOMMENDED that implementers consider the security features as 
provided by the SNMPv3 framework (see [RFC3410], section 8), 
including full support for the SNMPv3 cryptographic mechanisms (for 
authentication and privacy). 
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Further, deployment of SNMP versions prior to SNMPv3 is NOT 
RECOMMENDED. Instead, it is RECOMMENDED to deploy SNMPv3 and to 
enable cryptographic security. It is then a customer/operator 
responsibility to ensure that the SNMP entity giving access to an 
instance of this MIB module is properly configured to give access to 
the objects only to those principals (users) that have legitimate 
rights to indeed GET or SET (change/create/delete) them. 


8. IANA Considerations 


TANA has assigned 147 for the MIB module under the appropriate 
subtree. 
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